Topic: Access from internet problems

[jaguar]

I all, I'm a new sme server user and I have a problem.
My server, not gateway, is connected to a firewall in DMZ. I can't access to it, for example webmail, from internet, I can do it only from lan. The problem is always "Time out", infact the firewall port forwarding is correct 100%!

internet
(dynamic IP)
 !
 !
(PPPoE)
firewall(192.168.22.254)----DMZ-----(192.168.22.2)SMEServer
(192.168.22.254)
 !
 !
(192.168.22.0)
LAN

Thank all!!!
Jaguar

[tandum]

I think you misunderstand the DMZ. 192.168.x.x is not routable on the internet so you'll never connect to any host with that IP. The DMZ is for routable internet addresses.

You need to set your server with an internal fixed IP, say 192.168.22.20 and then port forward the required ports to that ip in the gateway.

Then connect to the gateway's internet address and connect to the required ports.

If you have a dynamic internet ip on the gateway you'll need to organise a dynamic name for the gateway. www.dyndns.org does that sort of thing.

[jaguar]

I'll already make that, using the ipcop firewall and dyndns with port forward (443) to server IP.
The schematic have an error, the lan is 192.168.222.0 and the ip of firewall is 192.168.222.254, sorry.

[tandum]

Why use ipcop?  SME will do that job.

In ipcop you need to open the port in the firewall as well as forward it.

[jaguar]

because i prefer use separate firewall from servers(webmail, fileshare, etc)...
The 80 and 443 port on ipcop is forwarded to the SMEServer, the problem seems on server!

[tandum]

In ipcop you need to open the port in the firewall as well as forward it.

[jaguar]

I found the problem!

local lan -> add lan -> ip 0.0.0.0 netmask 255.255.255.255

my error was in netmask, i must changed from 255.255.255.0 to 255.255.255.255 !

Thank all!

[Agent86]

I found the problem!

local lan -> add lan -> ip 0.0.0.0 netmask 255.255.255.255

my error was in netmask, i must changed from 255.255.255.0 to 255.255.255.255 !

Thank all!

So here is what my server says?

So is this correct??, why would changin netmask from ending in 0 to ending with 255 make it accessible from the net ?

Please advise I cannot access my webmail or webpages from the net only locally?

Server Mode   servergateway
Local IP address / subnet mask   192.xxx.xxx.x/255.255.255.0
External IP address / subnet mask   192.xxx.xxx.xxx
Additional local networks   192.168.217.0/255.255.255.0
DHCP server   enabled
Beginning of DHCP address range   192.xxx.xxx.xx
End of DHCP address range   192.xxx.xxx.xxx



And regarding port fowarding, so If I understand this correctly do I port foward to the internal ip address of the gateway lets say port 80 with ip 192.xxx.xxx.x or something, but when I try to connect vi the web I use the external IP address of the gateway, such as 192.xxx.xxx.xx or something like that and it will foward to the internal ip and port for my webpage ?

Please help with all this, thanks